npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@qwickapps/auth0-management-client

v1.0.0

Published

Auth0 Management API client for QwickApps - shared between CLI and server

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

raajkumarsraajkumars

Keywords

auth0managementapiclientqwickapps

Readme

@qwickapps/auth0-management-client

Auth0 Management API client for QwickApps. A pure TypeScript client with no server dependencies, suitable for use in both CLI tools and server-side applications.

Features

  • M2M token acquisition with automatic caching and refresh
  • Full Auth0 Management API coverage:
    • Applications (Clients)
    • Connections
    • Actions & Triggers
    • Resource Servers (APIs)
    • Roles & Permissions
  • Built-in rate limiting - Automatically throttles requests to stay under Auth0's limits (default: 8 req/sec)
  • Rate limit retry logic - Automatically retries on 429 responses
  • TypeScript types for all Auth0 resources

Installation

pnpm add @qwickapps/auth0-management-client

Usage

Basic Setup

import { Auth0ManagementClient } from '@qwickapps/auth0-management-client';

const client = new Auth0ManagementClient({
  domain: 'your-tenant.auth0.com',
  clientId: 'your-m2m-client-id',
  clientSecret: 'your-m2m-client-secret',
  rateLimitPerSecond: 8, // Optional: defaults to 8 (under Auth0's 10 req/sec free tier limit)
});

Test Connection

const result = await client.testConnection();
if (result.success) {
  console.log('Connected to Auth0');
} else {
  console.error('Connection failed:', result.error);
}

Applications

// List all applications
const apps = await client.listApplications();

// Find by name
const app = await client.findApplicationByName('My App');

// Create a SPA application
const newApp = await client.createApplication({
  name: 'My SPA',
  app_type: 'spa',
  callbacks: ['http://localhost:3000/callback'],
  allowed_logout_urls: ['http://localhost:3000'],
  web_origins: ['http://localhost:3000'],
});

// Update application
await client.updateApplication(app.client_id, {
  callbacks: ['http://localhost:3000/callback', 'https://app.example.com/callback'],
});

// Delete application
await client.deleteApplication(app.client_id);

Connections

// List connections
const connections = await client.listConnections();

// Create social connection
const conn = await client.createConnection({
  name: 'google-oauth2',
  strategy: 'google-oauth2',
  enabled_clients: [app.client_id],
});

// Update connection
await client.updateConnection(conn.id, {
  enabled_clients: [app.client_id, anotherApp.client_id],
});

Actions

// List actions
const actions = await client.listActions();

// Create action
const action = await client.createAction({
  name: 'Post-Login Handler',
  supported_triggers: [{ id: 'post-login', version: 'v3' }],
  code: `exports.onExecutePostLogin = async (event, api) => {
    // Your action code
  };`,
  runtime: 'node18',
  secrets: [
    { name: 'API_KEY', value: 'secret-value' },
  ],
});

// Deploy action
await client.deployAction(action.id);

// Get trigger bindings
const bindings = await client.getTriggerBindings('post-login');

// Bind action to trigger
await client.updateTriggerBindings('post-login', [
  { ref: { type: 'action_id', value: action.id }, display_name: 'My Action' },
]);

Note on TypeScript Actions: When using Anvil CLI to deploy TypeScript actions (anvil auth0 action deploy), the code is compiled and fully bundled using esbuild. All dependencies are inlined into a single file. This means you can import any npm package in your action code, but be aware that the entire dependency tree is bundled. Auth0's built-in modules (auth0, axios, etc.) are also bundled rather than using Auth0's provided versions.

Resource Servers (APIs)

// List APIs
const apis = await client.listResourceServers();

// Create API
const api = await client.createResourceServer({
  name: 'My API',
  identifier: 'https://api.example.com',
  scopes: [
    { value: 'read:users', description: 'Read user data' },
    { value: 'write:users', description: 'Modify user data' },
  ],
});

Roles

// List roles
const roles = await client.listRoles();

// Create role
const role = await client.createRole({
  name: 'admin',
  description: 'Administrator role',
});

// Add permissions to role
await client.addRolePermissions(role.id, [
  { resource_server_identifier: 'https://api.example.com', permission_name: 'read:users' },
]);

Required M2M Scopes

Your M2M application needs the following scopes:

  • read:clients, create:clients, update:clients, delete:clients
  • read:connections, create:connections, update:connections, delete:connections
  • read:actions, create:actions, update:actions, delete:actions
  • read:resource_servers, create:resource_servers, update:resource_servers, delete:resource_servers
  • read:roles, create:roles, update:roles, delete:roles

API Reference

Auth0ManagementClient

Constructor

new Auth0ManagementClient(config: Auth0ManagementConfig)

Methods

| Method | Description | |--------|-------------| | getAccessToken() | Get cached access token | | testConnection() | Test connection to Auth0 | | listApplications() | List all applications | | createApplication() | Create new application | | updateApplication() | Update application | | deleteApplication() | Delete application | | findApplicationByName() | Find app by name | | listConnections() | List all connections | | createConnection() | Create new connection | | updateConnection() | Update connection | | deleteConnection() | Delete connection | | findConnectionByName() | Find connection by name | | listActions() | List all actions | | createAction() | Create new action | | updateAction() | Update action | | deleteAction() | Delete action | | deployAction() | Deploy action | | findActionByName() | Find action by name | | getTriggerBindings() | Get trigger bindings | | updateTriggerBindings() | Update trigger bindings | | listResourceServers() | List all APIs | | createResourceServer() | Create new API | | updateResourceServer() | Update API | | deleteResourceServer() | Delete API | | findResourceServerByIdentifier() | Find API by identifier | | listRoles() | List all roles | | createRole() | Create new role | | updateRole() | Update role | | deleteRole() | Delete role | | findRoleByName() | Find role by name | | getRolePermissions() | Get role permissions | | addRolePermissions() | Add permissions to role | | removeRolePermissions() | Remove permissions from role |

License

This package is licensed under the PolyForm Shield License 1.0.0.

  • Free to use for non-competitive purposes
  • Cannot be used to compete with QwickApps

See LICENSE for full terms.

Copyright (c) 2025 QwickApps. All rights reserved.